Skip to main content
Question

Enabling a FV user via Configuration Profile?

  • October 11, 2019
  • 3 replies
  • 21 views
W
Forum|alt.badge.img+4

I am working on pushing out an account via a policy. I would like for this user to be a FileVault 2 user. When looking at the "Enable user for FileVault 2" there is an "i". It states:

"As of macOS 10.13, you cannot use this method to enable a user for FileVault. For macOS 10.13 and later, you can use a script or configuration profile to enable a user for FileVault."

I am trying how to do this via a configuration profile. None of the settings seem to allow this. Can someone point me to how to properly do this?

    3 replies

    J
    Forum|alt.badge.img+6
    • joelsenders
    • Contributor
    • October 11, 2019

    I'm not sure why it says that... because the best way to deploy FileVault for macOS 10.13+ is via policy. Also, there are reports that FileVault is not enabling on logout in 10.15. I have it done on log in so not an issue for me.

    J
    Forum|alt.badge.img+6
    • joelsenders
    • Contributor
    • October 11, 2019

    ... And reading it again, it says you can't use a configuration profile to "enable a user" for FileVault. Looks like a secure token thing.

    W
    Forum|alt.badge.img+4
    • wstewart3
    • Author
    • Contributor
    • October 14, 2019

    I am currently using a script that passes the username/password of a local admin account using parameters. I guess this will do!

    Terms & ConditionsCookie settingsAccessibility statement